Bug 1967148 - Test/document use of 512 bit volume encryption keys [NEEDINFO]
Summary: Test/document use of 512 bit volume encryption keys
Keywords:
Status: NEW
Alias: None
Product: Red Hat OpenStack
Classification: Red Hat
Component: openstack-cinder
Version: 16.2 (Train)
Hardware: Unspecified
OS: Unspecified
medium
medium
Target Milestone: ---
: ---
Assignee: Eric Harney
QA Contact: Evelina Shames
Andy Stillman
URL:
Whiteboard:
Depends On:
Blocks:
TreeView+ depends on / blocked
 
Reported: 2021-06-02 13:58 UTC by Eric Harney
Modified: 2023-08-03 15:46 UTC (History)
3 users (show)

Fixed In Version:
Doc Type: Enhancement
Doc Text:
Clone Of:
Environment:
Last Closed:
Target Upstream Version:
Embargoed:
ifrangs: needinfo? (eharney)


Attachments (Terms of Use)


Links
System ID Private Priority Status Summary Last Updated
Red Hat Issue Tracker OSP-4351 0 None None None 2022-10-03 18:22:09 UTC

Description Eric Harney 2021-06-02 13:58:05 UTC
https://access.redhat.com/documentation/en-us/red_hat_openstack_platform/16.1/html/storage_guide/ch-cinder#section-volumes_advanced_encryption

The storage guide currently documents use of 256 bit encryption keys.

Barbican now allows us to store 512 bit keys when using aes-xts, which we should support for Cinder volumes in OSP:  https://review.opendev.org/c/openstack/barbican/+/577096


Note You need to log in before you can comment on or make changes to this bug.